Salesforce Data Protection

Secure Coding in Salesforce: SOQL Injection, XSS/CSRF, and Secrets Hygiene

A 2D digital illustration infographic uses a blue .png

In Salesforce development — whether you’re working with Apex, LWC, Visualforce, or external integrations — even small mistakes can create serious security risks. Poor handling of user input or secrets can lead to data exposure, code execution, or unauthorized access. To protect your Salesforce org, there are three essential security...

October 20, 2025

Basic Apex & Programming

Apex Security Essentials — with/without sharing and CRUD/FLS with Security.stripInaccessible

A flat digital vector graphic features bold blue .png

In Salesforce development, secure Apex means two things: Enforcing record access through with sharing, without sharing, or inherited sharing. Enforcing object and field-level permissions using CRUD/FLS checks. Apex doesn’t automatically verify these for you—you have to do it.The safest, most reliable pattern is to use with sharing by default and...

October 18, 2025

LIST OF CONTENT

Secure Coding in Salesforce: SOQL Injection, XSS/CSRF, and Secrets Hygiene

Categories

Recent Posts

LIST OF CONTENT

Salesforce Data Protection

Secure Coding in Salesforce: SOQL Injection, XSS/CSRF, and Secrets Hygiene

Apex Security Essentials — with/without sharing and CRUD/FLS with Security.stripInaccessible

Categories

Recent Posts

Tags